English

Microsegmented Cloud Network Architecture Using Open-Source Tools for a Zero Trust Foundation

Cryptography and Security 2025-02-17 v1 Distributed, Parallel, and Cluster Computing Networking and Internet Architecture Systems and Control Systems and Control
Authors: Sunil Arora , John Hastings
View on arXiv PDF DOI

Abstract

This paper presents a multi-cloud networking architecture built on zero trust principles and micro-segmentation to provide secure connectivity with authentication, authorization, and encryption in transit. The proposed design includes the multi-cloud network to support a wide range of applications and workload use cases, compute resources including containers, virtual machines, and cloud-native services, including IaaS (Infrastructure as a Service (IaaS), PaaS (Platform as a service). Furthermore, open-source tools provide flexibility, agility, and independence from locking to one vendor technology. The paper provides a secure architecture with micro-segmentation and follows zero trust principles to solve multi-fold security and operational challenges.

Keywords

cloud security cloud computing microservices

Cite

@article{arxiv.2411.12162,
  title  = {Microsegmented Cloud Network Architecture Using Open-Source Tools for a Zero Trust Foundation},
  author = {Sunil Arora and John Hastings},
  journal= {arXiv preprint arXiv:2411.12162},
  year   = {2025}
}

Comments

8 pages, 6 figures

Related papers

View all related →
Cryptography and Security · Computer Science
Authentication and identity management based on zero trust security model in micro-cloud environment
Ivana Kovacevic, Milan Stojkov, Milos Simic
2024-10-30
Distributed, Parallel, and Cluster Computing · Computer Science
A Newer User Authentication, File encryption and Distributed Server Based Cloud Computing Security Architecture
Kawser Wazed Nafi, Tonny Shekha Kar, Sayed Anisul Hoque, M. M. A. Hashem
2013-03-05
Cryptography and Security · Computer Science
Zero Trust Security Model Implementation in Microservices Architectures Using Identity Federation
Rethish Nair Rajendran, Sathish Krishna Anumula, Dileep Kumar Rai, Sachin Agrawal
2025-11-10
Cryptography and Security · Computer Science
Towards a Trust Aware Network Slice based End to End Services for Virtualised Infrastructures
Vijay Varadharajan, Kallol Karmakar, Uday Tupakula, Michael Hitchens
2020-06-08
Networking and Internet Architecture · Computer Science
Multitenant Containers as a Service (CaaS) for Clouds and Edge Clouds
Berat Can Senel, Maxime Mouchet, Justin Cappos, Olivier Fourmaux +2
2023-12-29
Cryptography and Security · Computer Science
Performance Analysis of Zero-Trust multi-cloud
Simone Rodigari, Donna O'Shea, Pat McCarthy, Martin McCarry +1
2021-05-07
Distributed, Parallel, and Cluster Computing · Computer Science
Autonomic Cloud Computing: Open Challenges and Architectural Elements
Rajkumar Buyya, Rodrigo N. Calheiros, Xiaorong Li
2016-11-17
Networking and Internet Architecture · Computer Science
Towards a Zero-Trust Micro-segmentation Network Security Strategy: An Evaluation Framework
Nardine Basta, Muhammad Ikram, Mohamed Ali Kaafar, Andy Walker
2023-06-01
Distributed, Parallel, and Cluster Computing · Computer Science
Edge-as-a-Service: Towards Distributed Cloud Architectures
Blesson Varghese, Nan Wang, Jianyu Li, Dimitrios S. Nikolopoulos
2017-10-30
Cryptography and Security · Computer Science
A Critical Analysis of Foundations, Challenges and Directions for Zero Trust Security in Cloud Environments
Ganiyu Oladimeji
2024-11-12
Distributed, Parallel, and Cluster Computing · Computer Science
Towards Confidential Computing: A Secure Cloud Architecture for Big Data Analytics and AI
Naweiluo Zhou, Florent Dufour, Vinzent Bode, Peter Zinterhof +2
2023-05-30
Software Engineering · Computer Science
soCloud: A service-oriented component-based PaaS for managing portability, provisioning, elasticity, and high availability across multiple clouds
Fawaz Paraiso, Philippe Merle, Lionel Seinturier
2014-07-09
Cryptography and Security · Computer Science
Trust Management Model for Cloud Computing Environment
Somesh Kumar Prajapati, Suvamoy Changder, Anirban Sarkar
2013-04-22
Cryptography and Security · Computer Science
Trust-as-a-Service: A reputation-enabled trust framework for 5G networks
José María Jorquera Valero, Pedro Miguel Sánchez Sánchez, Manuel Gil Pérez, Alberto Huertas Celdrán +1
2022-10-24
Cryptography and Security · Computer Science
Partially Trusting the Service Mesh Control Plane
Constantin Adam, Abdulhamid Adebayo, Hubertus Franke, Edward Snible +3
2022-10-25
Distributed, Parallel, and Cluster Computing · Computer Science
Supporting Multi-Cloud in Serverless Computing
Haidong Zhao, Zakaria Benomar, Tobias Pfandzelter, Nikolaos Georgantas
2023-03-29
Cryptography and Security · Computer Science
A Survey on Security Issues in Cloud Computing
Rohit Bhadauria, Rituparna Chaki, Nabendu Chaki, Sugata Sanyal
2013-05-22
Distributed, Parallel, and Cluster Computing · Computer Science
The Serverless Computing Survey: A Technical Primer for Design Architecture
Zijun Li, Linsong Guo, Jiagan Cheng, Quan Chen +2
2022-01-04
Cryptography and Security · Computer Science
Survey on Security Issues in Cloud Computing and Associated Mitigation Techniques
Rohit Bhadauria, Sugata Sanyal
2015-06-04
Cryptography and Security · Computer Science
To Share or Not to Share in Client-Side Encrypted Clouds
Duane Wilson, Giuseppe Ateniese
2014-11-21
Cryptography and Security · Computer Science
NetSecCC: A Scalable and Fault-tolerant Architecture without Outsourcing Cloud Network Security
Jin He, Mianxiong Dong, Kaoru Ota, Minyu Fan +1
2014-05-06
Distributed, Parallel, and Cluster Computing · Computer Science
SoK: Microservice Architectures from a Dependability Perspective
Dāvis Kažemaks, Jérémie Decouchant
2025-03-06
Cryptography and Security · Computer Science
Zero Trust: Applications, Challenges, and Opportunities
Saeid Ghasemshirazi, Ghazaleh Shirvani, Mohammad Ali Alipour
2023-09-08
Software Engineering · Computer Science
Fostering Microservice Maintainability Assurance through a Comprehensive Framework
Amr S. Abdelfattah
2024-07-25
Cryptography and Security · Computer Science
Secure IAM on AWS with Multi-Account Strategy
Sungchan Yi
2025-01-07